Key security on multiple machines question

The wiki suggests only allowing harvesters the keys they need to work.

If I have already used my full mnemonic on a machine that I later want to transition to be a harvester only, what is the process for removing the additional keys? Do I have to delete any certificates or reinstall or does the command chia keys delete_all do everything that I need?